pipeline-security
CommunityAutomate CI/CD pipeline security assessments and risk analysis.
Authordo360now
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps security engineers evaluate CI/CD pipelines against industry best practices and standards, identifying vulnerabilities and compliance gaps.
Core Features & Use Cases
- Security Assessment: Reviews pipeline configurations for adherence to SLSA v1.0 build levels and OWASP CI/CD risks.
- Risk Identification: Detects insecure patterns such as inadequate flow controls, dependency abuse, and credential mishandling.
- Use Case: Security teams can regularly audit their pipeline setups to prevent supply chain attacks and improve compliance posture.
Quick Start
Use the pipeline-security skill to analyze your GitHub Actions workflow files for security best practices and compliance issues.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: pipeline-security Download link: https://github.com/do360now/security-agents/archive/main.zip#pipeline-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.